Solved

Linking Websphere app server administrative roles to AD groups.

Posted on 2013-10-27
4
497 Views
Last Modified: 2014-02-23
I successfully defined AD as the authentication source for my WAS 7.0.

How do I link Admin Roles to AD groups, so that the server will allow things like application deployment only to authenticated members of AD group "deployers" ?
0
Comment
Question by:shalomc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 39606499
0
 
LVL 33

Author Comment

by:shalomc
ID: 39607230
Thank you, but your article is not relevant.
It talks about mapping the WebSphere Business Events authentication by using WebSphere Application Server authentication.

I have already mapped WebSphere Application Server authentication to LDAP, and I don;t use WebSphere Business Events.

I need to map LDAP groups to WebSphere roles.
0
 
LVL 8

Accepted Solution

by:
AdminRAM earned 500 total points
ID: 39712857
In the WebSphere Application Server administrative console, click Security > Global security > Administrative Group roles > Add
    In the Search string field, search for the group IDs to which you want to assign the roles, and click Search
    In the Available field, select the LDAP group IDs to which you want to assign the roles and move them to the Mapped to role field, by using the arrows.
    Under Role(s), select deployer role
    Click OK and Save.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
A hard and fast method for reducing Active Directory Administrators members.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question